Dozer takes security issues very seriously. If you have uncovered a vulnerability, please get in touch via the e-mail address [email protected].
Please describe the issue and preferably a way to reproduce it. If you can share the following details, it will help us triage the issue more quickly.
- Type of issue
- Affected versions and impact
- Source file path
- Steps to reproduce
- Exploit code
Note that this security address should be used only for undisclosed vulnerabilities.
Currently security updates will only be merged to latest release.
We will confirm if the issue exists within two days, and if it is accepted and fixed, the update will be included in the next release, which usually happens every Friday.